This is regarding following SQL creation_statements on Vault:
creation_statements=“CREATE ROLE "{{name}}" WITH LOGIN PASSWORD ‘{{password}}’ VALID UNTIL ‘{{expiration}}’;
GRANT SELECT ON ALL TABLES IN SCHEMA public TO "{{name}}";” \
Does Vault perform some SQL injection checks or the onus is on the engineering team since this configuration is done, presumably by an admin?